This tiny (but powerful!) package can help you to provide out of the box all the endpoints, data and logic needed to add OpenID Connect capabilities to your Django projects. And as a side effect a fair implementation of OAuth2.0 too. Covers Authorization Code, Implicit and Hybrid flows.
Also implements the following specifications:
- OpenID Connect Discovery 1.0
- OpenID Connect Session Management 1.0
- OAuth 2.0 for Native Apps
- OAuth 2.0 Resource Owner Password Credentials Grant
- Proof Key for Code Exchange by OAuth Public Clients
Before getting started there are some important things that you should know:
- Despite that implementation MUST support TLS, you can make request without using SSL. There is no control on that.
- Supports only requesting Claims using Scope values, so you cannot request individual Claims.
- If you enable the Resource Owner Password Credentials Grant, you MUST implement protection against brute force attacks on the token endpoint
Contents:
.. toctree:: :maxdepth: 2 sections/installation sections/relyingparties sections/serverkeys sections/templates sections/scopesclaims sections/userconsent sections/oauth2 sections/accesstokens sections/sessionmanagement sections/tokenintrospection sections/settings sections/signals sections/examples sections/contribute sections/changelog